Page 2 of 3 FirstFirst 123 LastLast
Results 21 to 40 of 46

Thread: Annexcafe User2User newsgroup

  1. #21
    ~BD~
    Guest

    Re: Annexcafe User2User newsgroup

    Beauregard T. Shagnasty wrote:
    > In alt.computer.security, ~BD~ wrote:
    >
    >> "Beauregard T. Shagnasty" wrote:
    >>> This is, of course, a WAG.

    >> WAG? Google gives me 16,300,000 results! Please clarify. TIA

    >
    > Heehee. You can find most 'acronyms' at this site, including:
    > http://www.acronymfinder.com/WAG.html
    >
    > It's not first on the list... (hint: guess)
    > See also: SWAG
    >
    >> FYI - This URL gives some extra background
    >> http://www.pqlr.org/bbs/viewtopic.ph...3&p=8365#p8365

    >
    > ..a thread begun in August 2006. <g>
    >
    >> Some 'interpretation' is required I'm afraid. Btw, Annexcafe has over 300
    >> newsgroups, all funded by a business losing money and run by a recovering
    >> alchoholic! Hmmm!

    >
    > Well, I guest that answers two questions. One: why the hosting is
    > expensive, and Two: why the annex.com code is so old-style.
    >




    Thanks for your response once again, BTS

    I enjoy your sense of humour! ;)

    IMO there are some *very* clever folk responding to queries on U2U

    Should you have the time, why not register with Annexcafe, go to U2U and
    ask any technical question you can think of which might stretch an
    'average' adviser.

    I'll wager that you'll get a great selection of replies!

    Btw, did you come across the Webrings?
    You could start here http://webrings.annexcafe.com/?Stats&id=95

    The info. doesn't quite tie in with the activity in the group AFAICT.

    Cheers

    --
    Dave

  2. #22
    Beauregard T. Shagnasty
    Guest

    Re: Annexcafe User2User newsgroup

    In alt.computer.security, ~BD~ wrote:

    > Thanks for your response once again, BTS
    > I enjoy your sense of humour! ;)


    Thenk yew.

    > Should you have the time, why not register with Annexcafe,


    Time is short. Life goes on. Finding time here in retirement for such
    extra-curricular activities is difficult. I think I'll have another nap.

    > Btw, did you come across the Webrings?


    No, I had not. Odd stats there... about an 20:1 ratio of bots to humans,
    and virtually all of the humans use Internet Explorer.

    --
    -bts
    -Friends don't let friends drive Windows

  3. #23
    Tim Jackson
    Guest

    Re: Annexcafe User2User newsgroup

    ~BD~ wrote:
    > Kelb tal-Fenek wrote:
    >> ~BD~ wrote:
    >>> The 'Sysop' of the UK U2U site (Ann) sent me
    >>> (at my request) a jpg screenshot of her PC (she was having malware
    >>> problems and I was tryin to help her). I opened it with 'notepad' and
    >>> found about 12 live links which took me to websites typical of Spam
    >>> selling (Viagra etc). Not possible? Well - it happened!

    >>


    You took a file from a known compromised computer and then were
    surprised that the file was compromised? Why?

    >>
    >>>> Why do they ban good and honest folk like you from that site?
    >>> They never told me. It happened after I confirmed that I am now
    >>> absolutely certain that I'm being tasked to pursue matters
    >>> relentlessly until good defeats evil here on the web. It has been
    >>> extremely lonely at times and I'd welcome help from anyone who is
    >>> willing and able to help me achieve His aim.

    >>
    >> Tasked? I'm having some difficulty trying to understand what you are
    >> talking about. Who is giving you this task to defeat evil on the web
    >> and what does this have to do with usenet?

    >
    >
    > Perhaps you should explore here:- http://uk.alpha.org/
    >
    > I attended this course three years ago - very thought-provoking it was
    > too! Somewhere along the line I made a connection between bad guys
    > stealing money 'on-line' and then using same to train/fund terrorists
    > who wish to kill us
    >
    >


    So your invisible friend told you that you should become a vigilante
    hunting down people behaving suspiciously on the 'net? That's some big
    order.

    It doesn't sound surprising to me that guys struggling to keep a failing
    business above water will a) behave somewhat suspiciously, and will be
    suspicious of others' motives, and b) take risks which might allow
    others to take advantage of their site for nefarious purposes, or at
    least fail to perform due diligence in ensuring they don't.

    It is commonly said in the security business "if you have nothing to
    hide you have nothing to fear". This may be true in specific
    circumstances, but unfortunately there are few people who have nothing
    to hide one way or another. Many people behave secretively on the basic
    principle of "don't trust anyone", in some cultures it is endemic. So
    strange behaviour isn't per se evidence of criminal activity. This is
    really a variant on "Just because you are paranoid doesn't mean they
    aren't out to get you."

    What I am saying is that if you chase every suspicious kook on the net
    you will be a busy guy indeed, while the Mafya gets on with business as
    usual by the usual methods of broadcasting malware using bot-nets to
    obscure their origin, and generally leaving the talking about it on
    newsgroups to teenage kids with big mouths.


    Tim Jackson

  4. #24
    Ari
    Guest

    Re: Annexcafe User2User newsgroup

    On Tue, 12 May 2009 18:07:44 +0100, Tim Jackson wrote:

    > ~BD~ wrote:
    >> Kelb tal-Fenek wrote:
    >>> ~BD~ wrote:
    >>>> The 'Sysop' of the UK U2U site (Ann) sent me
    >>>> (at my request) a jpg screenshot of her PC (she was having malware
    >>>> problems and I was tryin to help her). I opened it with 'notepad' and
    >>>> found about 12 live links which took me to websites typical of Spam
    >>>> selling (Viagra etc). Not possible? Well - it happened!
    >>>

    >
    > You took a file from a known compromised computer and then were
    > surprised that the file was compromised? Why?
    >
    >>>
    >>>>> Why do they ban good and honest folk like you from that site?
    >>>> They never told me. It happened after I confirmed that I am now
    >>>> absolutely certain that I'm being tasked to pursue matters
    >>>> relentlessly until good defeats evil here on the web. It has been
    >>>> extremely lonely at times and I'd welcome help from anyone who is
    >>>> willing and able to help me achieve His aim.
    >>>
    >>> Tasked? I'm having some difficulty trying to understand what you are
    >>> talking about. Who is giving you this task to defeat evil on the web
    >>> and what does this have to do with usenet?

    >>
    >> Perhaps you should explore here:- http://uk.alpha.org/
    >>
    >> I attended this course three years ago - very thought-provoking it was
    >> too! Somewhere along the line I made a connection between bad guys
    >> stealing money 'on-line' and then using same to train/fund terrorists
    >> who wish to kill us
    >>
    >>

    >
    > So your invisible friend told you that you should become a vigilante
    > hunting down people behaving suspiciously on the 'net? That's some big
    > order.
    >
    > It doesn't sound surprising to me that guys struggling to keep a failing
    > business above water will a) behave somewhat suspiciously, and will be
    > suspicious of others' motives, and b) take risks which might allow
    > others to take advantage of their site for nefarious purposes, or at
    > least fail to perform due diligence in ensuring they don't.
    >
    > It is commonly said in the security business "if you have nothing to
    > hide you have nothing to fear". This may be true in specific
    > circumstances, but unfortunately there are few people who have nothing
    > to hide one way or another. Many people behave secretively on the basic
    > principle of "don't trust anyone", in some cultures it is endemic. So
    > strange behaviour isn't per se evidence of criminal activity. This is
    > really a variant on "Just because you are paranoid doesn't mean they
    > aren't out to get you."
    >
    > What I am saying is that if you chase every suspicious kook on the net
    > you will be a busy guy indeed, while the Mafya gets on with business as
    > usual by the usual methods of broadcasting malware using bot-nets to
    > obscure their origin, and generally leaving the talking about it on
    > newsgroups to teenage kids with big mouths.
    >
    > Tim Jackson


    ****, ain't that the truth.
    --
    A fireside chat not with Ari!
    http://tr.im/holj
    Motto: Live To Spooge It!

  5. #25
    ~BD~
    Guest

    Re: Annexcafe User2User newsgroup

    Beauregard T. Shagnasty wrote:
    > In alt.computer.security, ~BD~ wrote:
    >
    >> Thanks for your response once again, BTS
    >> I enjoy your sense of humour! ;)

    >
    > Thenk yew.


    YW :)


    >> Should you have the time, why not register with Annexcafe,

    >
    > Time is short. Life goes on. Finding time here in retirement for such
    > extra-curricular activities is difficult. I think I'll have another nap.


    I do understand the time demands - one wonders how one ever had the time
    to actually earn a living! Perhaps when you awaken? <g>


    >> Btw, did you come across the Webrings?

    >
    > No, I had not. Odd stats there... about an 20:1 ratio of bots to humans,
    > and virtually all of the humans use Internet Explorer.



    I know nothing about server stats. Perhaps you'd review these and
    comment thereafter:-



    Server status:
    Server running
    Allowing remote connections
    Parameters c 10 i 50 (0) l 2000000 o 1011 t 300 H 2 T 60 X 0 normal
    specified
    Not reserved
    Readers follow enabled
    Perl filtering enabled
    Perl filter stats: Pass: 1562 Reject: Refuse: MD5: 0 PHL: 0 FSL: 0

    Disk usage:
    /etc/news 20297852 Kbytes available
    (58.7%)
    /var/lib/news 20297852 Kbytes available
    (58.7%)
    /var/log/news 20297852 Kbytes available
    (58.7%)
    /var/spool/news/articles 20297852 Kbytes available
    (58.7%)
    /var/spool/news/incoming 20297852 Kbytes available
    (58.7%)
    /var/spool/news/outgoing 20297852 Kbytes available
    (58.7%)
    /var/spool/news/overview 20297852 Kbytes available
    (58.7%)

    Batch file sizes:

    Log file sizes:
    0 errlog 12 news 9888 news.notice
    4 expire.log 0 news.crit 4 nntpsend.log
    0 innfeed.log 0 news.err 0 unwanted.log

    Lock files:
    LOCK.innwatch

    Server connections:

    TOTAL: 0 0


    Daily Usenet report for dogagent from May 11 04:02:10 to May 12 04:02:07


    Log entries by program:
    Program name Lines %Lines Size
    %Size
    nnrpd 112621 99.7% 11.8 MB
    99.7%
    inn 172 0.2% 13.3 KB
    0.1%
    innd 159 0.1% 17.5 KB
    0.1%

    TOTAL: 3 112952 100.0% 11.9 MB
    100.0%

    Control commands to INND:
    Command
    Number
    flushlogs
    1
    go
    2
    logmode
    2
    mode
    147
    name
    2
    pause
    2
    renumber
    1
    reserve
    2

    TOTAL: 8
    159

    Incoming articles:
    Date Articles %Arts Art/sec Size %Size
    KB/sec
    May 11 04:02:10 - 04:59:59 9 7.6% 0.00 62.0 KB 4.6%
    0.02
    May 11 05:00:00 - 05:59:59 5 4.2% 0.00 10.4 KB 0.8%
    0.00
    May 11 06:00:00 - 06:59:59 4 3.4% 0.00 8.6 KB 0.6%
    0.00
    May 11 07:00:00 - 07:59:59 3 2.5% 0.00 185.5 KB 13.6%
    0.05
    May 11 08:00:00 - 08:59:59 8 6.7% 0.00 464.2 KB 34.1%
    0.13
    May 11 09:00:00 - 09:59:59 0 0.0% 0.00 0.0 KB 0.0%
    0.00
    May 11 10:00:00 - 10:59:59 0 0.0% 0.00 0.0 KB 0.0%
    0.00
    May 11 11:00:00 - 11:59:59 0 0.0% 0.00 0.0 KB 0.0%
    0.00
    May 11 12:00:00 - 12:59:59 0 0.0% 0.00 0.0 KB 0.0%
    0.00
    May 11 13:00:00 - 13:59:59 4 3.4% 0.00 3.7 KB 0.3%
    0.00
    May 11 14:00:00 - 14:59:59 0 0.0% 0.00 0.0 KB 0.0%
    0.00
    May 11 15:00:00 - 15:59:59 0 0.0% 0.00 0.0 KB 0.0%
    0.00
    May 11 16:00:00 - 16:59:59 2 1.7% 0.00 2.7 KB 0.2%
    0.00
    May 11 17:00:00 - 17:59:59 4 3.4% 0.00 9.7 KB 0.7%
    0.00
    May 11 18:00:00 - 18:59:59 62 52.1% 0.02 501.1 KB 36.9%
    0.14
    May 11 19:00:00 - 19:59:59 6 5.0% 0.00 52.9 KB 3.9%
    0.01
    May 11 20:00:00 - 20:59:59 1 0.8% 0.00 1.3 KB 0.1%
    0.00
    May 11 21:00:00 - 21:59:59 0 0.0% 0.00 0.0 KB 0.0%
    0.00
    May 11 22:00:00 - 22:59:59 4 3.4% 0.00 25.9 KB 1.9%
    0.01
    May 11 23:00:00 - 23:59:59 5 4.2% 0.00 28.8 KB 2.1%
    0.01
    May 12 00:00:00 - 00:59:59 1 0.8% 0.00 1.5 KB 0.1%
    0.00
    May 12 01:00:00 - 01:59:59 0 0.0% 0.00 0.0 KB 0.0%
    0.00
    May 12 02:00:00 - 02:59:59 0 0.0% 0.00 0.0 KB 0.0%
    0.00
    May 12 03:00:00 - 04:02:07 1 0.8% 0.00 1.3 KB 0.1%
    0.00

    TOTAL: 23:59:57 119 100.0% 0.00 1.3 MB 100.0%
    0.02

    NNRP auth users [Top 20]:
    User
    Conn
    amigo54321
    602
    CoyoteV
    258
    Katherine
    211
    TrolLisaTroll
    114
    cks
    78
    dave
    74
    Lana
    37
    Kuno
    16
    Aleeta
    7
    Herbert
    6
    Gisele2
    6
    lisa_sff
    5
    tom
    5
    Sara
    5
    Kandra
    3
    Katie
    3
    kev
    2

    TOTAL: 17
    1432
    ---------


    Renumbering active file.
    Expire messages:
    expireover start Tue May 12 04:03:03 BST 2009: ( -z/var/log/news/expire.rm)
    Article lines processed 19970
    Articles dropped 130
    Overview index dropped 130
    expireover end Tue May 12 04:03:09 BST 2009
    expirerm start Tue May 12 04:03:09 BST 2009
    expirerm end Tue May 12 04:03:11 BST 2009
    expire begin Tue May 12 04:03:41 BST 2009: (-v1)
    Article lines processed 20439
    Articles retained 20259
    Entries expired 180
    expire end Tue May 12 04:06:27 BST 2009
    all done Tue May 12 04:06:27 BST 2009
    ---------

    Post expiration status:

    Server status:
    Server running
    Allowing remote connections
    Parameters c 10 i 50 (0) l 2000000 o 1011 t 300 H 2 T 60 X 0 normal
    specified
    Not reserved
    Readers follow enabled
    Perl filtering enabled
    Perl filter stats: Pass: 1562 Reject: Refuse: MD5: 0 PHL: 0 FSL: 0

    Disk usage:
    /etc/news 20308824 Kbytes available
    (58.7%)
    /var/lib/news 20308824 Kbytes available
    (58.7%)
    /var/log/news 20308824 Kbytes available
    (58.7%)
    /var/spool/news/articles 20308824 Kbytes available
    (58.7%)
    /var/spool/news/incoming 20308824 Kbytes available
    (58.7%)
    /var/spool/news/outgoing 20308824 Kbytes available
    (58.7%)
    /var/spool/news/overview 20308824 Kbytes available
    (58.7%)

    Batch file sizes:

    Log file sizes:
    0 errlog 0 innfeed.log 0 news.crit 24 news.notice 0
    unwanted.log
    4 expire.log 0 news 0 news.err 0 nntpsend.log

    Lock files:
    LOCK.innwatch

    Server connections:

    TOTAL: 0 0

  6. #26
    Beauregard T. Shagnasty
    Guest

    Re: Annexcafe User2User newsgroup

    In alt.computer.security, ~BD~ wrote:

    > I know nothing about server stats. Perhaps you'd review these and
    > comment thereafter:-


    To tell you the troot, Dave, I'm not really interested in what goes on
    at annexcafe... sorry.

    --
    -bts
    -Friends don't let friends drive Windows

  7. #27
    Kelb tal-Fenek
    Guest

    Re: Annexcafe User2User newsgroup

    Tim Jackson wrote:
    > ~BD~ wrote:
    >> Kelb tal-Fenek wrote:
    >>> ~BD~ wrote:
    >>>> The 'Sysop' of the UK U2U site (Ann) sent me
    >>>> (at my request) a jpg screenshot of her PC (she was having malware
    >>>> problems and I was tryin to help her). I opened it with 'notepad' and
    >>>> found about 12 live links which took me to websites typical of Spam
    >>>> selling (Viagra etc). Not possible? Well - it happened!

    >
    > You took a file from a known compromised computer and then were
    > surprised that the file was compromised? Why?


    I've only heard of certain media formats being used to do damage or
    whatever when executed but that's all so I'm curious what they can
    do and which formats to watch out for. What is he talking about when
    he says there were "live links" in that file. I'm assuming he is
    talking about the jpg screenshot but his answer was a little vague.

    >>>>> Why do they ban good and honest folk like you from that site?
    >>>> They never told me. It happened after I confirmed that I am now
    >>>> absolutely certain that I'm being tasked to pursue matters
    >>>> relentlessly until good defeats evil here on the web. It has been
    >>>> extremely lonely at times and I'd welcome help from anyone who is
    >>>> willing and able to help me achieve His aim.
    >>>
    >>> Tasked? I'm having some difficulty trying to understand what you are
    >>> talking about. Who is giving you this task to defeat evil on the web
    >>> and what does this have to do with usenet?

    >>
    >> Perhaps you should explore here:- http://uk.alpha.org/
    >>
    >> I attended this course three years ago - very thought-provoking it was
    >> too! Somewhere along the line I made a connection between bad guys
    >> stealing money 'on-line' and then using same to train/fund terrorists
    >> who wish to kill us

    >
    > So your invisible friend told you that you should become a vigilante
    > hunting down people behaving suspiciously on the 'net? That's some big
    > order.
    >
    > It doesn't sound surprising to me that guys struggling to keep a failing
    > business above water will a) behave somewhat suspiciously, and will be
    > suspicious of others' motives, and b) take risks which might allow
    > others to take advantage of their site for nefarious purposes, or at
    > least fail to perform due diligence in ensuring they don't.
    >
    > It is commonly said in the security business "if you have nothing to
    > hide you have nothing to fear". This may be true in specific
    > circumstances, but unfortunately there are few people who have nothing
    > to hide one way or another. Many people behave secretively on the basic
    > principle of "don't trust anyone", in some cultures it is endemic. So
    > strange behaviour isn't per se evidence of criminal activity. This is
    > really a variant on "Just because you are paranoid doesn't mean they
    > aren't out to get you."
    >
    > What I am saying is that if you chase every suspicious kook on the net
    > you will be a busy guy indeed, while the Mafya gets on with business as
    > usual by the usual methods of broadcasting malware using bot-nets to
    > obscure their origin, and generally leaving the talking about it on
    > newsgroups to teenage kids with big mouths.


    Actually, this "nothing to hide, nothing to fear" saying isn't quite
    accurate; it never was and it is especially misleading these days
    when access to information and other various tools is available to
    just about anyone. You really can't even say, if you have virtually
    nothing than you have nothing to fear. When we are talking about
    people with invisible friends on vigilate missions, it's not what
    you have, it's what they *think* you have.

    How would you order these things by security risk? Marketers,
    corporations, government agencies, crime organizations, vigilates,
    religious fanatics, spurned lovers, kooks, etc., etc. And they all
    have access to computers and the internet.

    Any of them could pose a risk to you. One reason I'm replying to
    this thread is because the main reason I decided it would be good
    to learn about security "on the net" was because my first negative
    experiences online involved kooks of the stalker kind and, for me,
    they would be at the top of the list.

    Could it be that "my opinions" are something to hide? Expressing
    an opinion on just about anything online puts you at risk from
    these "mission from god" types. Should we hide our opinions?


  8. #28
    ~BD~
    Guest

    Re: Annexcafe User2User newsgroup

    Beauregard T. Shagnasty wrote:
    > In alt.computer.security, ~BD~ wrote:
    >
    >> I know nothing about server stats. Perhaps you'd review these and
    >> comment thereafter:-

    >
    > To tell you the troot, Dave, I'm not really interested in what goes on
    > at annexcafe... sorry.
    >


    Interesting response, BTS - the stats I posted were *not* from AnnexCafe.

    Maybe someone more knowledgeable will comment.

    --
    Dave

  9. #29
    Beauregard T. Shagnasty
    Guest

    Re: Annexcafe User2User newsgroup

    In alt.computer.security, ~BD~ wrote:

    > Beauregard T. Shagnasty wrote:
    >> In alt.computer.security, ~BD~ wrote:
    >>> I know nothing about server stats. Perhaps you'd review these and
    >>> comment thereafter:-

    >>
    >> To tell you the troot, Dave, I'm not really interested in what goes
    >> on at annexcafe... sorry.

    >
    > Interesting response, BTS - the stats I posted were *not* from
    > AnnexCafe.
    >
    > Maybe someone more knowledgeable will comment.


    What? You equate my lack of interest as a lack of knowledge? <lol!>

    --
    -bts
    -Friends don't let friends drive Windows

  10. #30
    ~BD~
    Guest

    Re: Annexcafe User2User newsgroup

    Tim Jackson wrote:
    > ~BD~ wrote:
    >> Kelb tal-Fenek wrote:
    >>> ~BD~ wrote:
    >>>> The 'Sysop' of the UK U2U site (Ann) sent me
    >>>> (at my request) a jpg screenshot of her PC (she was having malware
    >>>> problems and I was tryin to help her). I opened it with 'notepad'
    >>>> and found about 12 live links which took me to websites typical of
    >>>> Spam selling (Viagra etc). Not possible? Well - it happened!
    >>>

    >
    > You took a file from a known compromised computer and then were
    > surprised that the file was compromised? Why?




    I've been pondering what to say in response to you, Tim! (Here in the
    newsgroup - where there is an element of fishing!)

    I suppose the simple answer is that I was experimenting - that is what I
    do! I was *not* surprised to find live links (in a blue font) within, or
    rather, showing above all the 'gobbledegook' one sees when a picture
    file is opened with Notepad. I wasn't even surprised that these links
    'worked' and took me to multifarious web pages (Viagra, cures, etc.)


    What DID surprise me was what followed. I explained what had happened to
    folk by posting on the UK U2U newsgroup and was greeted by disbelief and
    notification that such things were impossible. However, within minutes
    of posting my message, the file had been 'doctored' - the links had been
    removed removed. I am convinced that, at that time, someone other than
    me was able to control my machine!



    > So your invisible friend told you that you should become a vigilante
    > hunting down people behaving suspiciously on the 'net? That's some big
    > order.



    I wouldn't have put it quite like that, Tim!

    I read this (somewhere!) recently :-

    "If you have a challenge, a want, or a need in your life and you bring
    that to God, do so knowing that every communication that you extend to
    God is heard and every prayer is answered. Then allow yourself to become
    aware of how that answer is unfolding in your life.

    Spend a few minutes now in meditation with your eyes closed. Then when
    you're ready, begin a dialogue with God. Share with God what's in your
    heart and on your mind, and then ask God for communication, guidance, or
    understanding.

    When you feel complete, allow yourself to hear God's reply. If you don't
    experience receiving an answer immediately, allow the answer to unfold
    in your life knowing that God has answered. Be patient with yourself in
    this process and continue to allow your faith and trust to deepen."


    Read: God and the Modern Scientist http://newhumanist.org.uk/451


    > It doesn't sound surprising to me that guys struggling to keep a failing
    > business above water will a) behave somewhat suspiciously, and will be
    > suspicious of others' motives, and b) take risks which might allow
    > others to take advantage of their site for nefarious purposes, or at
    > least fail to perform due diligence in ensuring they don't.
    >
    > It is commonly said in the security business "if you have nothing to
    > hide you have nothing to fear". This may be true in specific
    > circumstances, but unfortunately there are few people who have nothing
    > to hide one way or another. Many people behave secretively on the basic
    > principle of "don't trust anyone", in some cultures it is endemic. So
    > strange behaviour isn't per se evidence of criminal activity. This is
    > really a variant on "Just because you are paranoid doesn't mean they
    > aren't out to get you."



    Thank you for your comments. I think you one told me that you use lined
    paper - but not everyone does. That does leave room for me to 'read
    between the lines' so to speak!


    > What I am saying is that if you chase every suspicious kook on the net
    > you will be a busy guy indeed, while the Mafya gets on with business as
    > usual by the usual methods of broadcasting malware using bot-nets to
    > obscure their origin, and generally leaving the talking about it on
    > newsgroups to teenage kids with big mouths.


    Your words are wise! Perhaps I have over-iced the cake.
    I cannot afford the time to chase *everyone* - I have a boat to steer!

    It is Annex and Dogagent which have attracted my attention, along with
    www.Aumha.net . God (really does) know why!


    --
    Dave
    An active poster in 'microsoft.public.test.here' - and folk respond!!!
    How crazy is that? Or is something still not quite as it seems?

  11. #31
    Tim Jackson
    Guest

    Re: Annexcafe User2User newsgroup

    Kelb tal-Fenek wrote:
    > Tim Jackson wrote:
    >> ~BD~ wrote:
    >>> Kelb tal-Fenek wrote:
    >>>> ~BD~ wrote:
    >>>>> The 'Sysop' of the UK U2U site (Ann) sent me
    >>>>> (at my request) a jpg screenshot of her PC (she was having malware
    >>>>> problems and I was tryin to help her). I opened it with 'notepad' and
    >>>>> found about 12 live links which took me to websites typical of Spam
    >>>>> selling (Viagra etc). Not possible? Well - it happened!

    >> You took a file from a known compromised computer and then were
    >> surprised that the file was compromised? Why?

    >
    > I've only heard of certain media formats being used to do damage or
    > whatever when executed but that's all so I'm curious what they can
    > do and which formats to watch out for. What is he talking about when
    > he says there were "live links" in that file. I'm assuming he is
    > talking about the jpg screenshot but his answer was a little vague.
    >


    I understand that he received a file identified as .jpg, which when
    examined in ASCII was found to contain the URLs of suspect sites. I
    think the phrase "live link" is a mistake, that is a function of the
    viewer and notepad does not have the capability to display live links.
    I don't suppose that viewing such a file with a regular jpg viewer would
    have been able to activate the links either. *Why* any malware should
    put them there is a question I had no intention of addressing. *That*
    it put them there would not surprise me.

    >> It is commonly said in the security business "if you have nothing to
    >> hide you have nothing to fear". This may be true in specific
    >> circumstances, but unfortunately there are few people who have nothing
    >> to hide one way or another.


    > Actually, this "nothing to hide, nothing to fear" saying isn't quite
    > accurate; it never was and it is especially misleading these days
    > when access to information and other various tools is available to
    > just about anyone.


    Oh, absolutely, it's specious BS.

    > How would you order these things by security risk? Marketers,
    > corporations, government agencies, crime organizations, vigilates,
    > religious fanatics, spurned lovers, kooks, etc., etc. And they all
    > have access to computers and the internet.
    >
    > Any of them could pose a risk to you. One reason I'm replying to
    > this thread is because the main reason I decided it would be good
    > to learn about security "on the net" was because my first negative
    > experiences online involved kooks of the stalker kind and, for me,
    > they would be at the top of the list.
    >


    I guess one has to do one's own individual risk assessment. For example
    in my case spurned lovers come a long way down (a chance would be a fine
    thing), I don't have a lot worth stealing, and I really can't think of
    anything that I do have to hide.

    > Could it be that "my opinions" are something to hide? Expressing
    > an opinion on just about anything online puts you at risk from
    > these "mission from god" types. Should we hide our opinions?
    >


    Absolutely not. This is 'alternative' Usenet. Without opinions it has
    no raison d'etre whatsoever. "Publish and be damned". Or maybe
    "Publish, and be damned" That damned comma. You want to be involved in
    a debate, chances are you get attacked sooner or later. Mostly its
    harmless and can be resolved diplomatically. Many people don't bother
    with the diplomacy though, which is silly, it's like fighting with
    light-sabres - hitting your opponent with something that isn't really
    there. I never saw anyone back down from a flame war, they just get
    bored and walk away, long after everyone else got bored and plonked them.

    Tim

  12. #32
    Tim Jackson
    Guest

    Re: Annexcafe User2User newsgroup

    ~BD~ wrote:
    > Tim Jackson wrote:
    >> ~BD~ wrote:
    >>> Kelb tal-Fenek wrote:
    >>>> ~BD~ wrote:
    >>>>> The 'Sysop' of the UK U2U site (Ann) sent me
    >>>>> (at my request) a jpg screenshot of her PC (she was having malware
    >>>>> problems and I was tryin to help her). I opened it with 'notepad'
    >>>>> and found about 12 live links which took me to websites typical of
    >>>>> Spam selling (Viagra etc). Not possible? Well - it happened!
    >>>>

    >>
    >> You took a file from a known compromised computer and then were
    >> surprised that the file was compromised? Why?

    >
    >
    >
    > I've been pondering what to say in response to you, Tim! (Here in the
    > newsgroup - where there is an element of fishing!)
    >
    > I suppose the simple answer is that I was experimenting - that is what I
    > do! I was *not* surprised to find live links (in a blue font) within, or
    > rather, showing above all the 'gobbledegook' one sees when a picture
    > file is opened with Notepad. I wasn't even surprised that these links
    > 'worked' and took me to multifarious web pages (Viagra, cures, etc.)
    >


    That's NOT MS notepad you were running. I admit my knowledge of Windows
    is a bit out of date, but I just checked it out on a Vista machine and
    notepad still displays in a single font and does not recognise URLs as
    anything special. Was this on your Mac? Or, if Windoze, what are the
    chances notepad itself had been compromised?

    >
    > What DID surprise me was what followed. I explained what had happened to
    > folk by posting on the UK U2U newsgroup and was greeted by disbelief and
    > notification that such things were impossible. However, within minutes
    > of posting my message, the file had been 'doctored' - the links had been
    > removed removed. I am convinced that, at that time, someone other than
    > me was able to control my machine!
    >


    I find that highly unlikely. I would join in the disbelief. Not only
    the 'how' but more the 'why'. OK, you don't say how you received and
    opened the file, eg whether this was by regular POP3 email or through
    some sort of online chat service or whatever. But if the file was on
    your hard disk it would be a big job for someone to set up a remote
    access and use it just to tease you, and then cease. What sort of
    motive would a wizard of such powers have to stoop so low? ("Those who
    the gods would destroy they first drive mad" maybe :) ).

    Consider the possibility that what your computer was showing you was not
    the file that had been sent, but that either the file transfer encoding
    or decoding, or the viewer had been compromised. Or that on the two
    occasions you did not actually look at the same copy of the same file in
    the same place. I think it almost certain that you are jumping to an
    unwarranted conclusion here.



    >
    >> So your invisible friend told you that you should become a vigilante
    >> hunting down people behaving suspiciously on the 'net? That's some
    >> big order.

    >
    > I wouldn't have put it quite like that, Tim!
    >


    I wouldn't expect you to. :)

    > I read this (somewhere!) recently :-
    >
    > "If you have a challenge, a want, or a need in your life and you bring
    > that to God, do so knowing that every communication that you extend to
    > God is heard and every prayer is answered. Then allow yourself to become
    > aware of how that answer is unfolding in your life.
    >
    > Spend a few minutes now in meditation with your eyes closed. Then when
    > you're ready, begin a dialogue with God. Share with God what's in your
    > heart and on your mind, and then ask God for communication, guidance, or
    > understanding.
    >
    > When you feel complete, allow yourself to hear God's reply. If you don't
    > experience receiving an answer immediately, allow the answer to unfold
    > in your life knowing that God has answered. Be patient with yourself in
    > this process and continue to allow your faith and trust to deepen."
    >


    That is dangerous advice to take literally. The line to God is prone to
    phishing attacks. I would imagine most suicide bombers use a similar
    justification. The concept is perfectly reasonable, but the method is
    readily abused, you are likely to hear what you expect to hear. Just
    like your bank, don't take instructions from God unless they are
    properly encrypted and authenticated. (Well what would you expect to
    hear on a.c.s.)

    >
    > Read: God and the Modern Scientist http://newhumanist.org.uk/451
    >


    Not today thank you, I've enough reading matter already.

    >
    > Thank you for your comments. I think you one told me that you use lined
    > paper - but not everyone does. That does leave room for me to 'read
    > between the lines' so to speak!
    >


    I think I said I try not to write between the lines.

    >
    > Dave
    > An active poster in 'microsoft.public.test.here' - and folk respond!!!
    > How crazy is that? Or is something still not quite as it seems?


    Dammit this is the Internet. It is rare for anything to be as it seems.
    Deception is the norm.


    Tim

  13. #33
    ~BD~
    Guest

    Re: Annexcafe User2User newsgroup

    Tim Jackson wrote:

    > That's NOT MS notepad you were running. I admit my knowledge of Windows
    > is a bit out of date, but I just checked it out on a Vista machine and
    > notepad still displays in a single font and does not recognise URLs as
    > anything special. Was this on your Mac? Or, if Windoze, what are the
    > chances notepad itself had been compromised?


    What I have referred to happened a number of years ago, so I cannot be
    categoric. It was on a PC using Windows XP Home.

    I've just opened up a photograph of my boat engine using TextEdit.app on
    my Mac.

    This is part of what I see:-


    ˇÿˇ·¥Exif

  14. #34
    ~BD~
    Guest

    Re: Annexcafe User2User newsgroup

    Tim Jackson wrote:

    > That's NOT MS notepad you were running. I admit my knowledge of Windows
    > is a bit out of date, but I just checked it out on a Vista machine and
    > notepad still displays in a single font and does not recognise URLs as
    > anything special. Was this on your Mac? Or, if Windoze, what are the
    > chances notepad itself had been compromised?


    What I have referred to happened a number of years ago, so I cannot be
    categoric. It was on a PC using Windows XP Home.

    I've just opened up a photograph of my boat engine using the
    TextEdit.app on my Mac.

    This is part of what I see:-


    ?#Cc?'Ij??4Vx?&Il??Ae@e?
    Ek?*Qw?;c??*R{?Gp?@j>i
     A l ?!!H!u!!!?"'"U"""#
    #8#f###?$$M$|$$?% %8%h%%%&'&W&&?&''I'z''(
    (?(q(())8)k))**5*h**++6+i++,,9,n,,?- -A-v--..L..?./$/Z///?050l0011J11?12*2c223
    3F33?34+4e4455M555?676r667$7`77?88P8899B999?:6:t:?:;-;k;;<'<e<<="=a==>
    >`>>?!?a??@#@d@@A)AjAAB0BrBBC:C}CDDGDDEEUEEfiF"FgFF?G5G{GHHKHH?IIcII?J7J}JK KSKKL*LrL?MMJMMN%NnN?O


  15. #35
    ~BD~
    Guest

    Re: Annexcafe User2User newsgroup

    ~BD~ wrote:
    > Tim Jackson wrote:
    >
    >> That's NOT MS notepad you were running. I admit my knowledge of
    >> Windows is a bit out of date, but I just checked it out on a Vista
    >> machine and notepad still displays in a single font and does not
    >> recognise URLs as anything special. Was this on your Mac? Or, if
    >> Windoze, what are the chances notepad itself had been compromised?

    >
    > What I have referred to happened a number of years ago, so I cannot be
    > categoric. It was on a PC using Windows XP Home.
    >
    > I've just opened up a photograph of my boat engine using the
    > TextEdit.app on my Mac.
    >
    > This is part of what I see:-
    >
    >
    > ?#Cc?'Ij??4Vx?&Il??Ae@e?
    > Ek?*Qw?;c??*R{?Gp?@j>i
    >  A l ?!!H!u!!!?"'"U"""#
    > #8#f###?$$M$|$$?% %8%h%%%&'&W&&?&''I'z''(
    > (?(q(())8)k))**5*h**++6+i++,,9,n,,?- -A-v--..L..?./$/Z///?050l0011J11?12*2c223
    >
    > 3F33?34+4e4455M555?676r667$7`77?88P8899B999?:6:t:?:;-;k;;<'<e<<="=a==>
    > >`>>?!?a??@#@d@@A)AjAAB0BrBBC:C}CDDGDDEEUEEfiF"FgFF?G5G{GHHKHH?IIcII?J7J}JK KSKKL*LrL?MMJMMN%NnN?O

    >


    I've attempted to send a message twice already - each has been cut off
    in its prime! Curious.

    Anyway, this is the type of 'gobbledegook' to which I refer.

    It happens now on my wife's laptop (XP Home) if *I* open a photograph
    with Notepad.

    What do *you* see if you right-click on a photograph and select 'open
    with'....... then select Notepad or similar?

    Thanks Tim

    --
    Dave

  16. #36
    Tim Jackson
    Guest

    Re: Annexcafe User2User newsgroup

    ~BD~ wrote:
    > Tim Jackson wrote:
    >
    >> That's NOT MS notepad you were running. I admit my knowledge of
    >> Windows is a bit out of date, but I just checked it out on a Vista
    >> machine and notepad still displays in a single font and does not
    >> recognise URLs as anything special. Was this on your Mac? Or, if
    >> Windoze, what are the chances notepad itself had been compromised?

    >
    > What I have referred to happened a number of years ago, so I cannot be
    > categoric. It was on a PC using Windows XP Home.
    >


    Then it wasn't notepad you were running, I can be categoric about that.



    > I've just opened up a photograph of my boat engine using the
    > TextEdit.app on my Mac.
    >
    > This is part of what I see:-
    >
    >
    > ?#Cc?'Ij??4Vx?&Il??Ae@e?
    > Ek?*Qw?;c??*R{?Gp?@j>i
    >  A l ?!!H!u!!!?"'"U"""#
    > #8#f###?$$M$|$$?% %8%h%%%&'&W&&?&''I'z''(
    > (?(q(())8)k))**5*h**++6+i++,,9,n,,?- -A-v--..L..?./$/Z///?050l0011J11?12*2c223
    >
    > 3F33?34+4e4455M555?676r667$7`77?88P8899B999?:6:t:?:;-;k;;<'<e<<="=a==>
    > >`>>?!?a??@#@d@@A)AjAAB0BrBBC:C}CDDGDDEEUEEfiF"FgFF?G5G{GHHKHH?IIcII?J7J}JK KSKKL*LrL?MMJMMN%NnN?O

    >


    I am so much the wiser now. That's pretty much the sort of thing I'd
    expect, after a slightly more meaningful header. Your point being?


    Tim

  17. #37
    ~BD~
    Guest

    Re: Annexcafe User2User newsgroup

    Tim Jackson wrote:
    > ~BD~ wrote:
    >> Tim Jackson wrote:
    >>
    >>> That's NOT MS notepad you were running. I admit my knowledge of
    >>> Windows is a bit out of date, but I just checked it out on a Vista
    >>> machine and notepad still displays in a single font and does not
    >>> recognise URLs as anything special. Was this on your Mac? Or, if
    >>> Windoze, what are the chances notepad itself had been compromised?

    >>
    >> What I have referred to happened a number of years ago, so I cannot be
    >> categoric. It was on a PC using Windows XP Home.
    >>

    >
    > Then it wasn't notepad you were running, I can be categoric about that.



    Now you have me *really* confused! Notepad is a part and parcel of
    Windows XP - at least it is here on my machines!



    >> I've just opened up a photograph of my boat engine using the
    >> TextEdit.app on my Mac.
    >>
    >> This is part of what I see:-
    >>
    >>
    >> ?#Cc?'Ij??4Vx?&Il??Ae@e?
    >> Ek?*Qw?;c??*R{?Gp?@j>i
    >>  A l ?!!H!u!!!?"'"U"""#
    >> #8#f###?$$M$|$$?% %8%h%%%&'&W&&?&''I'z''(
    >> (?(q(())8)k))**5*h**++6+i++,,9,n,,?- -A-v--..L..?./$/Z///?050l0011J11?12*2c223
    >>
    >> 3F33?34+4e4455M555?676r667$7`77?88P8899B999?:6:t:?:;-;k;;<'<e<<="=a==>
    >> >`>>?!?a??@#@d@@A)AjAAB0BrBBC:C}CDDGDDEEUEEfiF"FgFF?G5G{GHHKHH?IIcII?J7J}JK KSKKL*LrL?MMJMMN%NnN?O

    >>

    >
    > I am so much the wiser now. That's pretty much the sort of thing I'd
    > expect, after a slightly more meaningful header. Your point being?
    >
    >
    > Tim


    Well - listed above that gobbledegook *WERE* the links which took me to
    the URL's I have mentioned.

    How? I have no idea!

    --
    Dave

  18. #38
    Tim Jackson
    Guest

    Re: Annexcafe User2User newsgroup

    ~BD~ wrote:
    > Tim Jackson wrote:
    >> ~BD~ wrote:
    >>> Tim Jackson wrote:
    >>>
    >>>> That's NOT MS notepad you were running. I admit my knowledge of
    >>>> Windows is a bit out of date, but I just checked it out on a Vista
    >>>> machine and notepad still displays in a single font and does not
    >>>> recognise URLs as anything special. Was this on your Mac? Or, if
    >>>> Windoze, what are the chances notepad itself had been compromised?
    >>>
    >>> What I have referred to happened a number of years ago, so I cannot
    >>> be categoric. It was on a PC using Windows XP Home.
    >>>

    >>
    >> Then it wasn't notepad you were running, I can be categoric about that.

    >
    >
    > Now you have me *really* confused! Notepad is a part and parcel of
    > Windows XP - at least it is here on my machines!
    >
    >


    Notepad is an accessory program supplied with all versions of Windows.
    Parcel yes, but not part. It does not have the capability AFAIK to
    display clickable URLs, or hyperlinks, it's a simple ASCII text editor.

    If you opened a file with Notepad and it displayed hyperlinks, then I
    would say your copy of Notepad had been replaced by something else. It
    does seem feasible to me that some malware might hook notepad with
    something that displays a few of its own hyperlinks, then reverts to
    business as usual. But it's pretty dumb malware because a lot of users
    would know this was abnormal behaviour for this program, and that they
    had been had. So it probably brushed snow over its tracks once you had
    run it (and followed a link), that's why it reverted to normal.

    One of your attempts showed "Exif " Which should be the seventh byte
    onwards of a jpg file, usually followed by some readable identification
    of the system that created it. Anything more than six bytes it shows
    before that isn't part of the file.

    I am convinced the problem lay in Notepad, not the displayed file. It
    also explains why other 'helpers' were confused.


    Tim

  19. #39
    BoaterDave
    Guest

    Re: Annexcafe User2User newsgroup

    On May 13, 12:42*pm, "Beauregard T. Shagnasty"
    <a.nony.m...@example.invalid> wrote:
    > In alt.computer.security, ~BD~ wrote:
    > > Beauregard T. Shagnasty wrote:
    > >> In alt.computer.security, ~BD~ wrote:
    > >>> I know nothing about server stats. Perhaps you'd review these and
    > >>> comment thereafter:-

    >
    > >> To tell you the troot, Dave, I'm not really interested in what goes
    > >> on at annexcafe... *sorry.

    >
    > > Interesting response, BTS - the stats I posted were *not* from
    > > AnnexCafe.

    >
    > > Maybe someone more knowledgeable will comment.

    >
    > What? You equate my lack of interest as a lack of knowledge? *<lol!>
    >
    > --
    > * *-bts
    > * *-Friends don't let friends drive Windows


    :))) But .......................

    I had a look at the most frequent 'user' in these statistics -
    amigo5432 - (via Google) and discovered that this poster is on a
    *Russian* site:-

    http://www.google.co.uk/search?q=ami...ient=firefox-a

    See:- http://forum.arena.ru/index.php?show...ded&pid=684890

    Now *I* find things like this intriguing - why would someone posting
    on a Russian URL be the most prolific poster on the Dogagent.com
    server? Hmmm!

    The next most frequent poster is CoyoteV - a member of staff at
    Annexcafe (and moderator of Scorched Earth)

    Significant in any way? Probably not ........ but I bet we don't get a
    satisfactory explanation from Dave Higham, the owner of Dogagent!

    --
    Dave (BD)

  20. #40
    ~BD~
    Guest

    Re: Annexcafe User2User newsgroup


    "G. Morgan" <usenet_abuse@gawab.com> wrote in message
    news:47b14101f9ca8c80ae37d530f3c5eb66np@mypost.invalid...
    > ~BD~ wrote:
    >
    >>Some 'interpretation' is required I'm afraid. Btw, Annexcafe has over 300
    >>newsgroups, all funded by a business losing money and run by a recovering
    >>alchoholic! Hmmm!

    >
    >
    > What's your point? Is he 'evil' because he's a recovering alcoholic?
    >


    Not at all. I have never suggested that Gregory Gooden himself is evil
    ............ but he *might* be!

    > Why are you "investigating" these people?


    'Cause I can! Honest folk give straight-forward answers - others lie!

    > What do you mean by getting rid of "evil" on the "web"?


    Like ....... stopping kids when I see them scrawling graffiti on walls or
    riding motorbikes along canal towpaths (illegal)!

    HTH
    --
    Dave



Similar Threads

  1. Best newsgroup or web forum for wifi sharing?
    By MieName in forum alt.internet.wireless
    Replies: 8
    Last Post: 05-10-09, 10:50 AM
  2. Re: Apple newsgroup
    By Phillip Windell in forum ms.public.windows.networking.wireless
    Replies: 0
    Last Post: 12-12-08, 03:25 PM
  3. Newsgroup service
    By Indy in forum General Discussion Board
    Replies: 8
    Last Post: 05-12-08, 05:17 PM
  4. Newsgroup help
    By SRF01 in forum Software Forum
    Replies: 8
    Last Post: 02-17-07, 05:09 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •